Details
-
Bug
-
Resolution: Duplicate
-
Major
-
None
-
7.4.0.GA
-
None
-
5
-
False
-
False
-
Undefined
Description
Since https://issues.redhat.com/browse/JBEAP-19713 has been resolved we have tried to offloaded web cache to RHDG-8. However we are missing some information and got stuck.
We have created RHDG 8 service following the documentation https://access.redhat.com/documentation/en-us/red_hat_data_grid/8.1/html/running_data_grid_on_openshift/index
Steps are summarized in analysis document https://docs.google.com/document/d/1-6iaROcS7tbkQwtB09-7jcF5eTvAi2pGwEcRPdRUuJ4/edit#
RHDG 8 requires secured HotRod connection by default. We downloaded the certificate
oc get secret rhdg-cert-secret -o jsonpath='{.data.tls\.crt}' | base64 --decode > tls.crt
and created keystore. Then we deployed web application that uses distributable-web subsystem and configured it to use remote cache container per documentation. Remote cache container is configured according to the fix of https://issues.redhat.com/browse/JBEAP-19713 and configured the cache container to use TLS/SSL.
/subsystem=elytron/key-store=clientTrust:add(credential-reference={clear-text=password}, path="/home/jstourac/workspace/appsint/appsint-deployments/rhdg-deployment/target/eap-jdg-jks.truststore", type=JKS)
/subsystem=elytron/trust-manager=clientTrustManager:add(key-store=clientTrust)
/subsystem=elytron/client-ssl-context=clientSsl:add(trust-manager=clientTrustManager)
/subsystem=infinispan/remote-cache-container=session_data_cc/component=security:write-attribute(name=ssl-context,value=clientSsl)
This is the point where we got stuck and miss some information. SSL handshake fails and connection is not established. We might be missing some info or steps. Or is this supposed to work?
rhn-engineering-rhusar can you provide some insight please?